remove app_data_file execute Remove the ability for applications to dlopen() executable code from their home directory for newer API versions. API versions <= 28 are uneffected by this change. Bug: 112357170 Test: cts-tradefed run cts -m CtsRenderscriptTestCases Change-Id: I1d7f3a1015d54b8610d1c561f38a1a3c2bcf79e4

commit: b362474374afc402f65695252d30a008326c0eba [log] [tgz]
author: Nick Kralevich <nnk@google.com> Wed Dec 12 09:06:39 2018 -0800
committer: Nick Kralevich <nnk@google.com> Wed Dec 12 13:20:39 2018 -0800
tree: fd296458f007a565602722983b1df696ff0a0adf
parent: 0eb0a16fbdfbb986d4209c86fe0261db35129c01 [diff] [blame]
diff --git a/private/untrusted_app_27.te b/private/untrusted_app_27.te
index b8fd22e..fab6acc 100644
--- a/private/untrusted_app_27.te
+++ b/private/untrusted_app_27.te

@@ -27,9 +27,9 @@
 net_domain(untrusted_app_27)
 bluetooth_domain(untrusted_app_27)
 
-# The ability to call exec() on files in the apps home directories
-# for targetApi 26, 27, and 28.
-allow untrusted_app_27 app_data_file:file execute_no_trans;
+# The ability to call exec() or dlopen() on files in the apps home
+# directories for targetApi 26, 27, and 28.
+allow untrusted_app_27 app_data_file:file { execute execute_no_trans };
 
 # The ability to invoke dex2oat. Historically required by ART, now only
 # allowed for targetApi<=28 for compat reasons.
commit	b362474374afc402f65695252d30a008326c0eba	[log] [tgz]
author	Nick Kralevich <nnk@google.com>	Wed Dec 12 09:06:39 2018 -0800
committer	Nick Kralevich <nnk@google.com>	Wed Dec 12 13:20:39 2018 -0800
tree	fd296458f007a565602722983b1df696ff0a0adf
parent	0eb0a16fbdfbb986d4209c86fe0261db35129c01 [diff] [blame]